### [CVE-2024-29974](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29974)
![](https://img.shields.io/static/v1?label=Product&message=NAS326%20firmware&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=NAS542%20firmware&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%20V5.21(AAZF.17)C0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%20V5.21(ABAG.14)C0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-434%20Unrestricted%20Upload%20of%20File%20with%20Dangerous%20Type&color=brighgreen)

### Description

** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED **The remote code execution vulnerability in the CGI program “file_upload-cgi” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute arbitrary code by uploading a crafted configuration file to a vulnerable device.

### POC

#### Reference
- https://outpost24.com/blog/zyxel-nas-critical-vulnerabilities/
- https://outpost24.com/blog/zyxel-nas-critical-vulnerabilities/

#### Github
No PoCs found on GitHub currently.